Data Diodes in Support of Trustworthy Cyber Infrastructure
- ORNL
Interconnections between process control networks and en- terprise networks has resulted in the proliferation of stan- dard communication protocols in industrial control systems which exposes instrumentation, control systems, and the critical infrastructure components they operate to a variety of cyber attacks. Various standards and technologies have been proposed to protect industrial control systems against cyber attacks and to provide them with confidentiality, in- tegrity, and availability. Among these technologies, data diodes provide protection of critical systems by the means of physically enforcing traffic direction on the network. In order to deploy data diodes effectively, it is imperative to un- derstand the protection they provide, the protection they do not provide, their limitations, and their place in the larger security infrastructure. In this work, we briefly review the security challenges in an industrial control system, study data diodes, their functionalities and limitations, and pro- pose a scheme for their effective deployment in trusted pro- cess control networks (TPCNs.)
- Research Organization:
- Oak Ridge National Lab. (ORNL), Oak Ridge, TN (United States)
- Sponsoring Organization:
- USDOE
- DOE Contract Number:
- DE-AC05-00OR22725
- OSTI ID:
- 978825
- Resource Relation:
- Conference: Cyber Security and Information Intelligence Workshop, Oak Ridge, TN, USA, 20100421, 20100423
- Country of Publication:
- United States
- Language:
- English
Similar Records
Proceedings Second Annual Cyber Security and Information Infrastructure Research Workshop
Countering Cyber Sabotage: Introducing Consequence-Driven Cyber-Informed Engineering (CCE)